Section C:

Summary about the LSPEI:

Basic understand: 

In the computing field, for a company to maintain their working process or their system, they
need to follow the ELPSI principle. This ELPSI principle is a word that is short for legal, social,
ethical and professional issues. By using ELPSI, all of the members in a company will have to
comply with the rules of the principle. Therefore, each company will have a number of
principles that are related to the five issues of the principles. Thus, it will help the company
thrive more towards professionalism. There are a few things that we need to know in order to
fully grasp ELPSI principle:

Legal issues:

 Copyright law for all of the company’s papers and information

 Violation related to software licensing
 Law related to computer crime
 Law related to handling private data information.

Social issues:

 Personal use of the company

 Certificate of global information assurance
 Appropriate and acceptable social behaviors
 Cultural moral attitude is very important

Ethical and Professional issues:

 All employees must be equipped

 Need to have positive point of view towards computer use
 Improve data and information privacy protection
  Data and system needs to be modified carefully
 There can’t be any ignorant
  It is important to retain technical control

Provide two practical examples:

Based on this case - TOG website, there are two main issues that TOG needs to address. Those
are Legal and Ethical issues:

Legal issues:

 Copyright law: 
 When the organization enters the production phase, all of the following assets
should be avoided: image, sound, video, the names that the organization decided to
use have to be distinct from other organizations.
 If you still want to use the assets that are owned by the other companies for your
products or within your companies, you will then need to have the permission to use
them or buy the license to use it from the owners of those assets. Plus, when buying
a license, you will need to have the term of agreement which is the document that
states the terms that the owner of the content will gain and where the content can
be used.
 Privacy handling over the data:
 The data needs to be evaluated regularly so that it can be more accurate and the
credibility will increase. 
 In the data handling course, you will need to make sure that the roles and the
responsibility are distributed correctly. That is why the role of a Data Protection
Officer is absolutely important.
 We need to profile and analyze the data more frequently in order to find out the
breaches in the data which can potentially cause serious issues and in the data
management process.
 Computer crime law
  The users will have to agree to our terms so that they can submit their personal data
through our website. User consent often has the following terms: users will
completely agree with the privacy policy which means that their data disclosure or
collections will be passed and stored. Not only that, the users will also have the
rights to the data that they share with the system that they are agreeing the terms
to. 
 Use object security. By using databases to store the data, we can also disperse it in
the system to prevent it from accessing the data. For a real life example: in any
website there is an admin page where the common customers won’t have access to.
Furthermore, the roles and permissions that you distribute are only accessible to the
right, authorized users.
 Store a secure hash. In the past, developers usually stored the password of the
customer’s account in a string without encryption or anything. Which will be easier
for the hackers to attack the website. Since that, we need to encrypt the password
by hashing so that the stored data can be secured.

Ethical Issues:

 CLIENT AND EMPLOYER:

 The products can only be released when all of the requirements of the products are
satisfied. Plus, the team needs to make sure that during the production of the
product, there won’t be any problems like function bugs or UI issues.
 All of the functional requirements plus the functional changes needs to be able to
perform. 
 Professional:
 The professional issue is that when releasing the product, the quality of the code
needs to be in great form. Not only that, the code needs to work well.

Four BCS Code of Conduct that TOG should be applied:

First off, we need to find out what a professional body is. It is a document containing guidelines,
rules, criteria of behavior that are needed in an organization. Professional body should be
complied and executive. A document called Code of Conduct will be built and compiled based
on the professional body. This document is the standard of behaving in the workplace, it also
provides the company evaluate the behavior of their employees. Next we will learn what are
the for BCS code of conduct:

The Public Interest: understand and know the interest, the goal of the company in order to
accuset the false actions or bad behaviors. 

Duty to Employers and Clients: This is the code that shows the responsibility in each of the
members’ duties.

Duty to the Profession: This is the code that shows the members that they always have the duty
to learn new knowledge in their profession. Plus, they will also support their co-workers
voluntarily when they encounter problems. 

Professional Competence and Integrity: the members always need to maintain their knowledge
and improve their skills in order to provide their customer with quality products and services.
Plus, they will also need to have the acceptable actions and behaviors in their workplace.

Provide a practical example for each of the four BCS Code of Conduct:

In order to achieve the goal and the aim of the business, we all need to comply our actions to
maintain the BCS Code of Conduct:

 The Public Interest:

 The initial members of the development team in TOG’s website must always have a
positive mindset towards the objectives given by the dev team. Any cases that are
related to the violation on the customer data, will have to pledge their actions. If
there are any violations in the organization, the members should address the issue
immediately. Plus, there is a case where the member prioritizes their interest over
the group’s, then he/she will need to be reviewed and evaluated based on the
serious level.
 There will be no discrimination actions in the workplace, everyone is equal to each
other.
  Each member in the company needs to be awakened before bribing or instigating.

 Duty to Employers and Clients:

 The members need to respect the privacy of the project. They can’t disclose or
publicly release any documents or information related to the project for personal or
3rd parties benefits.
 Those information can only be released or disclosed in these following situations:
- Allowed by the customer
- Required by law
- Allowed by the law or the responsibility of the work
 In addition, all of the members need to work hard to achieve the objectives of the
project. Avoid wasting the time and budget on the project.
 Stay away from cases that may lead to having an argument in the working process.
Unwanted agents must be eliminated to create a fluent process.

 Duty to the Profession:

 Honesty with relationships and business.
 If you see a member has any difficulty or problem in their working process, always
offer them help and give them advices to resolve the issue.
 The members who have more experiences in the field should reach out and help for
the newbies so that they can be able to put out great works and complete the works
in time.

 Professional Competence and Integrity: 

The knowledge and the skill of the members of the company need to be maintained
continuously. By doing that, they can give their best performance in any project. Their attitude
and actions need to reach the standards of the code of conduct.